Zapstore

Permissionless and social app store built on the #nostr protocol
For #Android #Linux and #Mac

https://zapstore.dev

Download
https://zapstore.dev/download/

Sources
https://github.com/zapstore

Secure by default
Everything you install comes from trusted sources and is cryptographically verified. Not satisfied with the default? Choose your own curators, or mix and match! Censorship has no place in our world.

Relevant to you
Supercharged by the nostr open protocol, recommendations come right from your social connections — or use it in totally private way. With our growing catalog, you will never run out of great apps.

Support your devs
Connect with your favorite developers: send them direct feedback, request features and support them through micropayments, all without any middlemen.

#apk #store

🚨 U.S. charges Yemeni national with deploying Black Kingdom ransomware on 1,500+ systems—from hospitals to schools—via Microsoft ProxyLogon.

💥 Targets paid in Bitcoin.

🔗 Read more: https://thehackernews.com/2025/05/us-charges-yemeni-hacker-behind-black.html

🔥 Two years inside. Nation-state footprints. Critical infrastructure targeted.

Fortinet links Iranian APT Lemon Sandstorm to a stealthy attack on a Middle East CNI (May '23–Feb '25).
Used VPN exploits, chained proxies, 7 custom backdoors across 4 phases.

Read this story ➡️ https://thehackernews.com/2025/05/iranian-hackers-maintain-2-year-access.html

🚨 Malicious Go modules are nuking Linux systems—wiping entire disks beyond recovery using hidden payloads.

🧨 3 GitHub-hosted packages posed as dev tools. Once run on Linux, they downloaded a script to overwrite /dev/sda—killing the OS.

At the same time, npm & PyPI malware is:
| 🪙 Stealing crypto keys
| 📧 Using Gmail to exfiltrate data
| 🔁 Hiding via WebSockets

👀 Over 75,000+ downloads so far.

Read → https://thehackernews.com/2025/05/malicious-go-modules-deliver-disk.html

Complexity

Supercharge your favourite AI Chat web apps.

🔗 Links:
- Add it to your browser
- Screenshots
- Source code
Developer: Pham Ngoc Duong

🪞Similar posts:
- Scira
- Farfalle
- Perplexica
- Morphic

❗️Friendly reminder:

If you find it useful, You may star the repo/app, donate to the developer, or perhaps you may also contribute to the development of this project.

🏷 Tags:  #Extension #Desktop #Android #AI

OpenOTP

A feature-rich, secure OTP (One-Time Password) generator app built with Flutter. OpenOTP allows you to store your OTP keys securely and generate TOTP and HOTP codes with a clean, customizable interface.

🔗 Links:
- Download
- Screenshots
- Features
- Source code
Developer: Slipstreamm

❗️Friendly reminder:

If you find it useful, You may star the repo/app, donate to the developer, or perhaps you may also contribute to the development of this project.

🏷 Tags: #Android #Windows #iOS #Linux

ePub-utils: A Python library and CLI tool for inspecting ePub from the terminal
Article, Comments

We know a little more about Amazon's super-secret satellites
Article, Comments

Microsoft makes all new accounts passwordless by default

Microsoft has announced that all new personal accounts will be "passwordless by default." This replaces traditional passwords with alternatives like passkeys, biometrics, one-time codes, Microsoft Authenticator, etc. to secure accounts against phishing, brute-force attacks, etc.

Once the users are signed in, they will be prompted to enroll passkey. Existing users can delete their password by visiting the account settings.

This simplified experience gets you signed in faster and in our experiments has reduced password use by over 20%

🔗 Bleeping Computer
🧑‍💻 @agamtechtricks

KDE Plasma LTS releases are no more.

https://news.itsfoss.com/kde-plasma-lts-discontinued/

microG update 2025-03-02:
===========================


Brand new notes:

  [None]

       x


Updated notes:


    microg-roms

         Added iodéOS
         Updated some text

====

microG update 2025-05-03:
===========================


Brand new notes:

  [None]

       x


Updated notes:


    installer-minmicrog

IMPORTANT SAFETY NOTE:
         Added text about potentially buggy CI
versions and a link to a known good
version to use for now.

(This issue has zero impact on people
who have already installed microG with
this installer. MinMicroG is not a
maintenance tool, once you have installed
the included components, its job is done.)

====

RethinkDNS Resolver That Deploys to CF Workers, Deno Deploy, Fastly, Fly.io
Article, Comments

DuckDB is probably the most important geospatial software of the last decade
Article, Comments

#FUTO #Keyboard Updates： The Swipe Dataset is Public!

https://peertube.futo.org/videos/watch/44d2e41a-307b-49ab-9a14-1e2e1eaa9a94

You can access the dataset here: https://huggingface.co/datasets/futo-org/swipe.futo.org

More info about FUTO Keyboard
https://t.me/Libreware/1299

You can learn more about FUTO here: https://futo.org

Logseq power users, this one’s for you!

https://itsfoss.com/logseq-plugins/

Firefox could be doomed without a Google search deal

Mozilla’s CFO has said that Firefox’s future will be at risk if the U.S. Department of Justice (DOJ) restricts Google’s search monopoly. Google’s payments for the default search engine on Firefox make up about 85% of Mozilla’s revenue.

Losing this revenue means Mozilla would be forced to make drastic cuts, which could "put Firefox out of business," along with other nonprofit efforts like open-source web tools.

Without the revenue, Mozilla and other small, independent browsers may be forced to scale back operations and cut support for critical projects like Gecko, the only remaining browser engine competing with Google’s Chromium and Apple’s WebKit. 

🔗 The Verge
🧑‍💻 @agamtechtricks

#microg any comment?

<esse.bruno:discord> it uses MicroG which likely still leaks your location to apps without the location permission granted to them, if that's not bad enough for you, then you don't care about privacy

<esse.bruno:discord> [reply]: you can find proof of this in some source code and wiki page commits, there used to be a time frame of YEARS in which the implementation status wiki page for the gmscore(?) repo put on a joke about the implementation status of network location, saying it "does not honor app ops" (re @esse.bruno: it uses MicroG which likely still leaks your location to apps without the location permission grante...)

May be something that microg users should check more deeply.

https://t.me/GrapheneOS/1737056/1921773

https://t.me/GrapheneOS/1737056/1921779